Vulnerability Description
Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Panda | Panda Antivirus | 2008 |
References
- http://secunia.com/advisories/26336
- http://securityreason.com/securityalert/2968
- http://www.pandasecurity.com/homeusers/support/card?id=41111&idIdioma=2&ref=PAV0
- http://www.securityfocus.com/archive/1/475373/100/0/threaded
- http://www.securityfocus.com/archive/1/480022/100/100/threaded
- http://www.securityfocus.com/archive/1/480443/100/100/threaded
- http://www.securityfocus.com/bid/25186Exploit
- http://www.securitytracker.com/id?1018722
- http://www.vupen.com/english/advisories/2007/2784
- https://tiifp.org/tarkus/advisories/panda030707.txt
- http://secunia.com/advisories/26336
- http://securityreason.com/securityalert/2968
- http://www.pandasecurity.com/homeusers/support/card?id=41111&idIdioma=2&ref=PAV0
- http://www.securityfocus.com/archive/1/475373/100/0/threaded
- http://www.securityfocus.com/archive/1/480022/100/100/threaded
FAQ
What is CVE-2007-4191?
CVE-2007-4191 is a vulnerability with a CVSS score of 6.9 (MEDIUM). Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or...
How severe is CVE-2007-4191?
CVE-2007-4191 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4191?
Check the references section above for vendor advisories and patch information. Affected products include: Panda Panda Antivirus.